CVE-2019-19388
29.11.2019, 00:15
A cross-site scripting (XSS) vulnerability in app/dialplans/dialplan_detail_edit.php in FusionPBX 4.4.1 allows remote attackers to inject arbitrary web script or HTML via the dialplan_uuid parameter.
| Vendor | Product | Version |
|---|---|---|
| fusionpbx | fusionpbx | 4.4.1 |
𝑥
= Vulnerable software versions
References